3 matches found
Fast PHP Chat 1.3 - (my_item_search) SQL Injection Vulnerability
Exploit Title: Fast PHP Chat 1.3 - 'myitemsearch' SQL Injection Exploit Author: Fatih Coskun Vendor Homepage: https://codecanyon.net/item/fast-php-chat-responsive-live-ajax-chat/10721076 Version: 1.3 Category: Webapps Tested on: Kali linux Description : The vulnerability allows an attacker to...
Advance B2B Script 2.1.3 - 'show_id' / 'pid' SQL Injection
Exploit Title: Advance B2B Script 2.1.3 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/advance-b2b-script/ Demo: http://198.38.86.159/advancedb2b/ Version: 2.1.3 Category: Webapps Tested on:...
某学校综合管理系统通用SQL注入漏洞
简要描述: 某学校综合管理系统通用SQL注入漏洞 详细说明: 系统名称:学校综合管理平台 厂商:上海安脉计算机科技有限公司 关键字:版权所有:上海安脉计算机科技有限公司 系统架构:ASPX+MSSQL 漏洞文件:OA/usecar/carStat.aspx 注入参数:startdate 枚举部分案例: http://anmai.net:81/OA/usecar/carStat.aspx http://jwxx.am.jsedu.sh.cn/ANMAI/OA/usecar/carStat.aspx http://bssyxxgl.eicbs.com/OA/usecar/carStat.as...